vulnerability
Amazon Linux 2023: CVE-2023-52930: Important priority package update for kernel
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:L/Au:M/C:C/I:C/A:C) | Mar 27, 2025 | Apr 30, 2025 | Jul 17, 2025 |
Severity
6
CVSS
(AV:L/AC:L/Au:M/C:C/I:C/A:C)
Published
Mar 27, 2025
Added
Apr 30, 2025
Modified
Jul 17, 2025
Description
In the Linux kernel, the following vulnerability has been resolved:
drm/i915: Fix potential bit_17 double-free
A userspace with multiple threads racing I915_GEM_SET_TILING to set the
tiling to I915_TILING_NONE could trigger a double free of the bit_17
bitmask. (Or conversely leak memory on the transition to tiled.) Move
allocation/free'ing of the bitmask within the section protected by the
obj lock.
[tursulin: Correct fixes tag and added cc stable.]
(cherry picked from commit 10e0cbaaf1104f449d695c80bcacf930dcd3c42e)
A flaw was found in the Linux kernel's Intel graphics driver (i915), specifically within the Direct Rendering Manager (DRM) subsystem. This issue arises when multiple threads simultaneously attempt to set the tiling mode of a graphics buffer to I915_TILING_NONE using the I915_GEM_SET_TILING ioctl. These concurrent operations can lead to a race condition, resulting in a double-free of the bit_17 bitmask or a memory leak during the transition to a tiled mode. The root cause is the lack of proper synchronization when allocating and freeing the bitmask, leading to potential memory corruption and system instability.
drm/i915: Fix potential bit_17 double-free
A userspace with multiple threads racing I915_GEM_SET_TILING to set the
tiling to I915_TILING_NONE could trigger a double free of the bit_17
bitmask. (Or conversely leak memory on the transition to tiled.) Move
allocation/free'ing of the bitmask within the section protected by the
obj lock.
[tursulin: Correct fixes tag and added cc stable.]
(cherry picked from commit 10e0cbaaf1104f449d695c80bcacf930dcd3c42e)
A flaw was found in the Linux kernel's Intel graphics driver (i915), specifically within the Direct Rendering Manager (DRM) subsystem. This issue arises when multiple threads simultaneously attempt to set the tiling mode of a graphics buffer to I915_TILING_NONE using the I915_GEM_SET_TILING ioctl. These concurrent operations can lead to a race condition, resulting in a double-free of the bit_17 bitmask or a memory leak during the transition to a tiled mode. The root cause is the lack of proper synchronization when allocating and freeing the bitmask, leading to potential memory corruption and system instability.
Solutions
amazon-linux-2023-upgrade-bpftoolamazon-linux-2023-upgrade-bpftool-debuginfoamazon-linux-2023-upgrade-kernelamazon-linux-2023-upgrade-kernel-debuginfoamazon-linux-2023-upgrade-kernel-debuginfo-common-aarch64amazon-linux-2023-upgrade-kernel-debuginfo-common-x86-64amazon-linux-2023-upgrade-kernel-develamazon-linux-2023-upgrade-kernel-headersamazon-linux-2023-upgrade-kernel-libbpfamazon-linux-2023-upgrade-kernel-libbpf-develamazon-linux-2023-upgrade-kernel-libbpf-staticamazon-linux-2023-upgrade-kernel-livepatch-6-1-12-17-42amazon-linux-2023-upgrade-kernel-toolsamazon-linux-2023-upgrade-kernel-tools-debuginfoamazon-linux-2023-upgrade-kernel-tools-develamazon-linux-2023-upgrade-perfamazon-linux-2023-upgrade-perf-debuginfoamazon-linux-2023-upgrade-python3-perfamazon-linux-2023-upgrade-python3-perf-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.